tomcat-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Mark Thomas <>
Subject Re: How to prevent CVE-2012-5568 in Tomcat 7.0.32
Date Fri, 25 Jan 2013 07:45:41 GMT

Aditi Sinha <> wrote:

>We are using Tomcat 7.0.32 in our application.  During a security scan
>CVE-2012-5568 was reported.
>Is there a configuration which can help us prevent this vulnerability?
>I went through the but could
>find any detail on the same.

There is lots if information in the archives on this. This bugzilla issue is probably the
best place to start:

We could think about adding some info on this under the "Not a vulnerability in Tomcat" section
on the security pages.


To unsubscribe, e-mail:
For additional commands, e-mail:

View raw message